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L Real Party in Interest (37 C.F.R. §41-37(c)(l)(i)) 

The real party in interest in the present appeal is Microsoft Corporation, the assignee of 
the present application, 

n. Related Appeals and Interferences (37 C,F.R. §41.37(c)(l)(ii)) 

Appellant, appellant's legal representative, and/oi the assignee of the present application 
are not aware of any appeals or interferences which maybe related to, will directly affect, or be 
directly affected by or have a bearing on the Board's decision in the pending appeal 

m. status of Claims (37 C-F-It §41.37(c)(lXIii)) 

Claims 1-34 stand rejected by the Examiner, The rejection of claims 1-34 is being 
appealed. 

IV. Status of Amendments (37 C-F.R. §41.37(c)(l)(iv)) 

No clahn amendments have been entered ajfter the Final Office Action. Amendments 
were made to the specification, but were not entered by the Examiner. 

V. Summary of Claimed Subject Matter (37 C.RR. §41 37(c)(l)(v)) 
A. Indeoendent Claim 1 

hidependent claim 1 recites a system to faciUtate substantially secure conomumcation, 
comprising: a communication component operative to store an outgoing message received 
directly from an associated process, the outgoing message including a message key having a key 
value, an attribute being associated with the communication component, the attribute having 
selectable attribute conditions that are inaccessible by the associated process; and a filter 
associated with the communication component, the filter controlling sending the stored outgoing 
message fiom the communication component based on the key value of the outgoing message 
and one of the attribute conditions. (See e.g., page 2, line 23 - page 3, line 15, page 5, line 25 - 
page 6, line 20, page 1 8, line 1 8 - page 20, line 1 8) 
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B. Independent Claim 12 

Independent claim 12 recites a system to facilitate substantially secure communication 
between at least two processes, comprising: a first queue operative to store a request received 
directly firom a first of the at least two processes and, upon validation of the stored request, to 
send the stored request to a second of the at least two processes, the stored request including a 
destination address and a key having a key value; and an interface operative to validate the stored 
request based on the key value of the stored request relative to at least one predetermined key 
value associated with the first queue, the at least one key value associated with the first queue 
being unavailable to the first process. (See e.g., page 3, lines 16 - 24, page 11, line 21 - page 12, 
line 20) 

C. Independent Claim 21 

Independent claim 21 recites a system to facilitate substantially secure communication 
between at least two user-level processes, comprising: storage means for storing an outgoing 
message received from a first of the at least two processes, the outgoing message including a 
message key associated with a destination, an attribute being associated with the storage means, 
the attribvrte having selectable attribute conditions unavailslble to user-level processes; and 
control means for controlling sending of the stored outgoing message fiom the storage means 
based on the message key and one of the attribute conditions. (See e.g., page 3,Iine 25 - page 4, 
line 5, page 12, line 21 - page 14, line 2) 

D- Independent Claim 25 

Independent claim 25 recites a system to facilitate substantially secure conunxmication 
between at least two user-level processes, comprising: storage means for storing a request 
received directly from a first of the at least two processes and, upon validation of die stored 
request, for sending the stored request to a second of the at least two processes, the stored request 
including a key having a key value; and validation means for validating the stored request based 
on the key value of the stored request relative to at least one predetenmined key value associated 
with the storage means, the at least one key value associated with the storage means being 
unavailable to user-level processes. {See e.g., page 3^]me 25 - page 4, line 5, page 12, line 21 - 
page 14, line 2) 
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E. Independent Claim 28 

Independent claim 28 recites a computer-readable medium having computer-executable 
instructions for: storing in a storage device an outgoing message received directly from an 
associated user-kvel process, the outgoing message including a message key having a key value, 
an attribute being associated with the storage device, the attribute having « selectable attribute 
conditions unavailable to user-level processes; and controlling sending the stored outgoing 
message from the connnunication component based on the key value of the outgoing message 
and one of the attribute conditions. (See eg,, page 3,line 25 - page 4, line 5, page 12, line 21 - 
page 14, line 2) 

F, Independent Claim 29 

Independent claim 29 recites a computer-readable medium having computer-executable 
instructions for: storing a request received directly from a first of at least two xiser-level 
processes in a storage device; upon validation of the stored request, sending the stored request to 
a second of the at least two processes, the stored request including a key having a key value; and 
validating the stored request based on the key value of the stored request relative to at least one 
predetennined key value associated with the storage device^ the at least one key value associated 
with the storage device being unavailable to user-level processes. (See e.g., page Saline 25 - 
page 4, line 5, page 12, line 21 - page 14, line 2) 

G- Independent Claim 30 

Independent claim 30 recites a method to faciUtate substantially secure communication 
from a fibrst user-level process in a system in which the first process is operable to communicate 
directly with hardware, comprising: storing an outgoing message received directly from the jfirst 
process in an associated storage device, the outgoing message including a message key having a 
key value; and controlling sending of the stored message to a second process based on the value 
of the message key relative to a predetennined at least one key value associated with the storage 
device, the at least one key value associated with the storage device being unavailable to the first 
process, (See e.g., page 3, lines 16-24, page 1 1, line 21 - page 12, line 20) 
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H, Independ ent riaim 14 

Independent claim 34 recites a method to facilitate substantially secure communication 
from a first user-level process in a system in whicli the first process is operable to communicate 
directly with hardware, comprising: storing an outgoing message received directly from the first 
process in a storage device associated with the first process, the outgoing message including a 
message key associated with a destination, an attribute being associated with the storage device, 
the attribute having selectable attribute conditions being inaccessible by user-level processes; 
and controlling sending of the stored outgoing message from the storage device based on the 
message key of the stored outgoing message and one of the attribute conditions of the storage 
device. (See e.g. , page 3, line 25 - page 4, line 5, page 12, line 21 - page 14, line 2) 

VI. Grounds of Rejection to be Reviewed (37 C^F.R. §41.37(c)(l){vi)) 

A. Whether claims 1, 2, 5-15 and 20-34 are unpatentable under 35 U.S.C §102(e) 
over Bruno, et al. (US 6,604,123). 

B. Wheth^ claims 3, 4 and 16-19 are uiq)atentable xmder 35 U-S.C. § 103(a) over 
Bruno, et aL (US 6,604,123) in view of Neal, et al (US 6,766,467). 

vn. Argument (37 C.F*R. §4l-37(c)(lXvii)) 

A, Rejection of Claims 1> 2, 5-15 and 20-34 Under 35 U.S.C. S102fe^ 

Claims 1, 2, 5-15 and 20-34 stand rejected under 35 U.S.C, § 102(e) as being anticipated 
by Bruno, et al (US 6,604,123). It is respectfiilly submitted that this rejection should be 
withdrawn for at least the following reasons. Bruno, et aL does not teach each and every element 
of the subject invention as recited in the subject claims. 

A single prior art reference anticipates a patent claim only if it 
expressly or inherently describes each and every limitation set 
forth in the patent claim. THntec Industries, Inc., v. Top-U,S.A, 
Corp,, 295 F,3d 1292, 63 US-P.Q,2D 1597 (Fed. Cir. 2002); See 
Verdegaal Bros, v. Union Oil Co. of California, 814 F.2d 628, 631, 
2 USPQ 2d 1051, 1053 (Fed. Cir. 1987). The identical invention 
must be shown in as complete detail as is contained in the ... 
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claim. Richardson v. Suzuki Motor Co., 868 F.2d 1226, 9 USPQ2d 
1913. 1920 (Fed. Cir. 1989). 

The subject invention relates to providing secure communication of messages from a 
user-level gcpplication or process that has direct access to commimication hardware components^ 
Applicants* claimed invention employs message keys and attributes associated with the 
communication components to verify authenticity of messages and secure the communications. 
The attribute conditions associated with the communication component are not accessible by 
user level processes to ensure the security of the communication system. In particular, 
independent claim 1 (and similarly independent claim 30) recites, a communication component 
operative to store an outgoing message received directly from an associated process, the 
outgoing message including a message key having a key value, an attribute being associated 
with the communication component, the attribute having selectable attribute conditions that are 
inaccessible by the associated process; and a filter associated with the communication 
componentf the filter controlling sending the stored outgoing message fivm the 
communication component based on the key value of the outgoing message and one of the 
attribute conditions. 

Bruno, et aL does not teach or suggest the aforementioned novel aspects of applicants* 
invention as recited in the subject claims. Bruno, et aL teaches a system for mvoking a service 
located in a second protection domain (client applications or servers) from a thread located in a 
first protection domain. The cited reference is concemed with transfer of threads between 
protection domains, Bruno, et aL is silent regarding a filter that controls sending of a stored 
message based on validating a key value included in the message against an attribute condition 
associated with a communication component. Rather, the cited reference discloses that when a 
chent application in a first protection domain desires to invoke a server in a second protection 
domain, the client application sends a request to a name_server protection domain (or 
alternatively directly to a poital_manag6r protection domain) indicating which server it requires. 
The name server will validate the access rights of the chenl appHcation to the server. If access is 
granted, the name server will provide the chent ^phcation with an identifier to the server, which 
the client appHcation will send the portal^manager to request instantiation of a portal between 
the client application and the server. Once the portal is established the chent qsplication can 
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employ the server freely. If the server is a communication server, no additional security is 
enforced on outgoing messages from the client application through the server. Consequently, 
Bruno, et aL does not teach or suggest a filter associated with the communication component, the 
filter controlling sending the stored outgoing message pom the communication component based 
on the key value of the outgoing message and one of the attribute conditions, 

FurthermoTe, independent claim 12 recites a first queue operative to store a request 
received directly from a first of the at least two processes and, upon validation of the stored 
request, to send the stored request to a second of the at least two processes, the stored request 
including a destination address and a key having a key value; and an interface operative to 
validate the stored request based on the key value of the stored request relative to at least one 
predetermined key value associated with the first queue, the at least one key value associated 
with the first queue being unavailable to the first process, SimjJar to tbe discussion above with 
respect to claim 1, Bruno, et aL fails to teach or suggest validation of a request from a fibrst 
process to a second process that is stored in an intermediate queue based upon a key value in the 
request and one or more key values associated with the queue. After a portal is op^ed between 
a client appUcation and a server, the prior art reference discloses validation of request 
parameters, such as the file name of an OPEN request However, this parameter is not associated 
with a queue for storing the request between the client application and server. Therefore, Bruno, 
et aL fails to teach or suggest an interface operative to validate the stored request based on the 
key value of the stored request relative to at least one predetermined key value associated with 
the first queue, the at least one key value associated with the first queue being unavailable to the 
first process. 

Moreover, independent claim 21 (and similarly independent claims 25, 28, 29 and 34) 
recites a system to facilitate substantially secure communication between at least two user-level 
processes, comprising: storage means for storing an outgoing message received from a first of 
the at least two processes, the outgoing message including a message key associated with a 
destination, an attribute being associated with the storage means, the attribute having selectable 
attribute conditions unavailable to user-level processes; and control means for controlling 
sending of the stored outgoing message from the storage means based on the message key and 
one of the attribute conditions. As discussed supra with respect to independent claim 1, Bnmo, 
et aL fails to teach or suggest any filtering of stored outgoing messages based upon a message 
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key and one of the attribute conditions associated with the storage means. The cited reference 
also fails to disclose that the attribme conditions are unavailable to user-level processes. Bruno, 
et aL discloses access_restrictions for client applications to services; however, the 
accessjrestrictions are validated by the xxaiue^server and portal_manager which are user-level 
processes. In addition, the Advisory Action cites the portal specification disclosed at column 6, 
line 57 tibxough column 7, line 62 of the reference to account for the attributes recited in the 
subject claim. The cited portal specification describes a parameter that is inserted in the 
parameter list by the operating system. Yet, this parameter is accessible by the server which is a 
user level process and is not used to validate against a key in an outgoing message. As such, 
Bruno, et aU fails to teach or suggest an attribute having selectable attribute conditions 
unavailable to user-level processes; and control means for controlling sending of the stored 
outgoing message from the storage means based on the message key and one of the attribute 
conditions. 

In view of the foregoing, applicant's representative respect&Ily submits that Bruno, et al 
fails to teach or suggest all limitations of the subject invention as recited in independent claims 1, 
12, 21, 25, 28-30 and 34 (and claims 2, 5-11, 13-15, 20, 22-24, 26-27, and 31-33 that depend 
there jfrom), and thus fails to anticipate the claimed invention. Accordingly, reversal of this 
rejection is respectfully requested. 

B. Rejection of riflittifi %^ 4 and 16-19 Under 35 U,S,C> 8103(a} 
Claims 3, 4 and 16-19 stand rejected imder 35 U.S.C. 103(a) as being unpatentable over 
Bruno, et aL in view of Neal, et aL (US 6,766,467), It is respectfully submitted that this 
rejection should be withdrawn for at least the following reasons. Bruno, et aL in view of Neal, et 
aL &ils to teach or suggest each and every limitation of applicant's claimed invention. 



To reject claims in an application under §103, an examiner must 
establish a prima facie case of obviousness. A prima facie case of 
obviousness is established by a showing of three basic criteria. 
First, there must be some suggestion or motivation, either in the 
references themselves or in the knowledge generally available to 
one of ordinary skill in the art, to modify the reference or to 
combine reference teachings. Second, there must be a reasonable 
expectation of success. Finally, the prior art reference (or 
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references when combined) must teach or suggest all the claim 
limitations. See MPEP §706.02(j). The teaching or suggestion to 
make the claimed combinaticn and the reasonable expectation of 
success must both be found in the prior art and not based on 
applicant's disclosure. See In re Vaeck 947 F.2d 488, 20 USPQ2d 
1438 (Fed. Cir. 1991). 

The subject claims respectively depend from independent claims 1 and 12. As noted 
supra^ Bruno et al does not teach or suggest each and every element of the subject invention as 
recited in these independent claims, and Neal et al. fails to make up for the aforementioned 
deficiencies of Bruno et aL Neal, et al. teaches a system method for pausing a send queue 
without causing errors in oth^ queues. Neal» et aL fails to teach or suggest any keys or attributes 
used for security of communications as recited in independent claims 1 and 12. Therefore^ 
reversal of this rejection is rcspectfkiUy requested. 
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C- Conclusioii 

For at least the above reasons, the claims currently under consideration are believed to be 
patentable over the cited references. Accordingly, it is respectfully requested that the rejections 
of claims 1-34 be reversed. 

If any additional fees are due in connection with tlois document, the Commissioner is 
authorized to charge those fees to Deposit Account No. 50-1063 [MSFTP185US]. 



AMIN & TUROCY, LLP 

24^ Floor, National City Center 
1900 East 9**" Street 
Telephone: (216) 696-8730 
Facsimile: (216)696-8731 



Respectfully submitted^ 

AMIN & TUROCY, LLP 




David W. Giilfo 
Reg. No. 52,970 
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VIII. Qaims Appendix (37 C.FJL §41.37(c)(l)(viii)) 



A system to facilitate substantially secure communication, comprising: 



a communication component operative to store an outgoing message received directly 
from an associated process, the outgoing message including a message key having a key value, 
an attribute being associated with the communication component, the attribute having selectable 
attribute conditions that are inaccessible by the associated process; and 

a jBlter associated with the communication component, the jSIter controlling sending the 
stored outgoing message j&om the communication component based on the key value of the 
outgoing message and one of the attribute conditions. 

2. The system of claim 1, wherein the communication component further comprises at least 
one storage device operative to store messages. 

3. The system of claim 2, wherein the at least one storage device fuither comprises at least 
one queue operative to store messages being sent by the associated process. 

4. The systOTi of claim 3, wherein the at least one queue further comprises at least two 
queues, one of the at least two queues being operative to store messages being sent by the 
associated process and another of the at least two queues being operative to store messages being 
sent to the associated process. 

5. The system of claim 1 , wherein the message key corresponds to a key associated with 
another communication component that is associated with a desired destination. 

6. The system of claim 1, wherein the message key is a multi-bit field for storing data 
identifying a key associated with a destination communication component 

7. The system of claim 1, wherein the filter is operative to prevent sending the outgoing 
message from the communication component upon detecting an invalid message key in the 
outgoing message. 
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8 . Tbe system of claim 7, wherein key data having a range of at least one key value is 
associated with the commumcation component, the key data being inaccessible by the associated 
process, the filter controlling transmission of the outgoing message based on the validation of the 
message key as a function of one of the attribute conditions and the range of at least one key 
value, 

9. The system of claim 8, wherein the filter employs the attribute to define a valid range of 
at least one key value based on the at least one key value associated with the communicatian 
component, such that the filter provides different control in connection with a message having a 
message key within the valid range and a message having a message key outside the valid range. 

10. The system of claim 9, wherein the key data identifies a plurality of key values. 

1 1 . Tlie system of claim 10, wherein the filter is operative to permit whether a message 
having a message key in the valid range is sent fiom the communication component. 

12. A system to facilitate substantially secure conununication between at least two processes, 
comprising: 

a first queue operative to store a request received directly from a first of the at least two 
processes and, upon validation of the stored request, to send the stored request to a second of the 
at least two processes, the stored request including a destination address and a key having a key 
value; and 

an interface operative to validate the stored request based on the key value of the stored 
request relative to at least one predetermined key value associated with the first queue, the at 
least one key value associated with the first queue being unavailable to the first process, 

13. The system of claim 12, finther comprising an attribute associated with the first queue, 
the attribute defining a valid range of key values based on the at least one key value associated 
with the first queue to control sending stored requests from the first quexie. 
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14. The system of claim 13, wherein the attribute has a selectable attribute conditions that are 
unavailable to the first process and the valid range of message keys varies as a function of the 
attribute coaditjoixs and tbe at least one key value associated with the first queue. 

15. The system of claim 14, wherein the at least one key value associated with the first queue 
further comprises a plurality of key values associated with the first queue and unavailable to the 
first process. 

16. The system of claim 14, wherein the attribute is set to have one of at least a first 
condition and a second condition. 

17- The system of claim 16, wherein the interface is operative to prevent the stored request 
ftom being sent fi-om the first queue if the attribute has the first condition and the key has a vahie 
that agrees with the at least one key value associated with the first queue. 

18. The system of claim 17, wherein the interface is operative to permit the stored request 
firom being sent firom the first queue if the attribute has the first condition and the key has a value 
that disagrees with the at least one key value associated with the fijret queue, 

1 9. The system of clsdm 16, wherein the interface is operative to prevent the stored request 
fi-om being sent from the first queue if the attribute has the second condition and the key has a 
value that agrees with the at least one key value associated with the first queue, 

20. The system of claim 12, wherein the interface is operative to prevent sending the request 
from the first queue if the request includes an invalid key. 

21. A system to facilitate substantially secure commimication between at least two user-level 
processes, comprising: 

storage means for storing an outgoing message received from a first of the at least two 
processes, the outgoing message including a message key associated with a destination, an 
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attribute being associated with the storage means, the attribute having selectable attribute 
conditions unavailable to user-level processes; and 

control means for controlling sending of the stored outgoing message from the storage 
means based on the message key and one of the attribute conditions. 

22. The system of claim 21 , further con^sing validation data associated with the storage 
means and unavailable to user-level processes, the control means controlling sending of the 
outgoing message based on the validation of the message key as a function of the attribute and 
vaUdation data. 

23. The system of claim 22, wherein the validation data comprises at least one key value. 

24. The system of claim 23, wherein control means is operative to control whether the stored 
message can be sent firom the storage means based on the message key relative to a valid range 
of key values, which varies as a function of one of the attribute conditions and the vaUdation 
data. 

25. A system to facihtate substantially secure communication between at least two user-level 
processes, comprising: 

storage means for storing a request received directly firom a first of the at least two 
processes and, upon validation of the stored request, for sending the stored request to a second of 
the at least two processes, the stored request including a key having a key value; and 

vahdation means for vahdating the stored request based on the key value of the stored 
request relative to at least one predetermined key value associated with the storage means, the at 
least one key value associated with the storage means being unavailable to user-level processes. 

26. The system of claim 25, further comprising an attribute associated with the storage 
means, the attribute defining a valid range of key values based on the at least one key value 
associated with the storage means, the validation means controlling sending stored requests firom 
the storage means according to the valid range of key values. 
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27. The system of claim 26, wherein the attribute has & selectable attribute conditions that are 
not available to user-level processes, the valid range of key values varying as a function of the 
attribute conditions and the at least one key value associated with the storage means. 

28. A computer-readable medium having computer-executable instructions for: 
storing in a storage device an outgoing message received directly from an associated 

user-level process, the outgoing message including a message key having a key value, an 
attribute being associated with the storage device, the attribute having a selectable attribute 
conditions unavailable to user-level processes; and 

controlling sending the stored outgoing message from the communication component 
based on the key value of the outgoing message and one of the attribute conditions. 

29. A computer-readable medium having computer-executable instructions for: 
storing a request received directly from a first of at least two user-level processes in a 

storage device; 

upon validation of the stored request, sending the stored request to a second of the at least 
two processes, the stored request including a key having a key value; and 

validating the stored request based on the key value of the stored request relative to at 
least one predetermined key value associated with the storage device, the at least one key value 
associated with the storage device being unavailable to user-level processes. 

30. A method to facihtate substantially secure communication from a first user-level process 
in a system in which the first process is operable to communicate directly with hardware, 
comprising: 

storing an outgoing message received directly from the first process in an associated 
storage device, the outgoing message including a message key having a key value; and 

controlling sending of the stored message to a second process based on the value of the 
message key relative to a predetermined at least one key value associated with the storage 
device, the at least one key value associated with the storage device being unavailable to the first 
process. 
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3 1 . The method of claim 30, further comprising associating an attribute with the storage 
device that is operable to define a valid range of key values based on the at least one key value 
associated with the storage device, and controlling sending of the stored message jfrom the 
storage device based on the message key thereof and the defined valid range of key values. 

32. The method of claim 3 1 , wherein the attribute has a selectable attribute conditions not 
available to the first process, the valid range of key values varying as a function of the attribute 
conditions and the at least one key value associated with the storage device. 

33- The method of claim 30, fhrther comprising validating the message key relative to the at 
least one key value associated with the storage device, and, upon detecting an invalid message 
key, preventing the stored message fiom being sent fixmi the storage device. 



34, A method to facihtate substantially secure communication fixwn a first user-level process 
in a system in w^ich the first process is operable to cormnunicate directly with hardware^ 
comprising: 

storing an outgoing message received directly from the first process in a storage device 
associated with the first process, the outgoing message including a message key associated with 
a destination, an attribute being associated with the storage device, the attribute having selectable 
attribute conditions being inaccessible by user-level processes; and 

controlling sending of the stored outgoing message &om the storage device based on the message 
key of the stored outgoing message and one of the attribute conditiotis of the storage device. 



IX. Evidence Appendix (37 C.F.R. §41-37(c)(l)(ix)) 



None. 



X. 



Related Proceedings Appendix (37 CF-R. §41.37(c)(l)(x)) 



None. 
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